{ "$schema": "http://cyclonedx.org/schema/bom-1.6.schema.json", "bomFormat": "CycloneDX", "specVersion": "1.6", "serialNumber": "urn:uuid:0d3bc6c8-53d8-5321-a845-9242704dbfa6", "version": 1, "metadata": { "tools": [ { "name": "tuxcare-vex-generator", "version": "1.0.0" } ] }, "components": [ { "bom-ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4", "type": "library", "group": "org.apache.cxf", "name": "cxf-rt-rs-extension-providers", "version": "3.5.9-tuxcare.4", "purl": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ], "vulnerabilities": [ { "bom-ref": "urn:uuid:5fdc486f-c476-51e7-8fb4-8a2aa9d31e9e", "id": "CVE-2005-4838", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2005-4838 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:0fe39214-9537-5746-988d-b1b8d26380c0", "id": "CVE-2006-7196", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2006-7196 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:46c4042e-72ec-5faf-991a-8f7548718868", "id": "CVE-2007-1358", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-1358 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f00be801-ecf1-540a-a871-40ac95cb83a2", "id": "CVE-2007-2449", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2007-2449 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:485ea287-5649-53e5-b766-7b08b62198f5", "id": "CVE-2008-0128", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2008-0128 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ce6391be-36ca-5d64-b3e3-0fccbff21bef", "id": "CVE-2009-2696", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2009-2696 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a82745a4-aab3-5cfa-b8e9-acf1dab8993b", "id": "CVE-2010-1151", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2010-1151 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:41b81db3-d3ba-5562-afbb-dd2ac99d5730", "id": "CVE-2013-2185", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-2185 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:604d655f-a343-58f2-9288-53e0c59de3d6", "id": "CVE-2013-4286", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4286 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:b356435d-3a40-5796-b48e-259b6c796315", "id": "CVE-2013-4322", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4322 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bdaab04e-46d0-571d-8366-a71c8d8449e0", "id": "CVE-2013-4444", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4444 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f96ba606-8b9e-5543-b478-24e4da04bf65", "id": "CVE-2013-4590", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-4590 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:396ca548-afb0-5235-923f-fe892ec8600f", "id": "CVE-2013-6357", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2013-6357 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:f40259f9-d64d-55ca-8cbd-1cfad3271457", "id": "CVE-2014-0075", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0075 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9abbf0c1-db88-5bea-bfa6-35768d81a4f5", "id": "CVE-2014-0096", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0096 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9dc84742-5fa2-5d2f-884e-3b0645c9612c", "id": "CVE-2014-0099", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0099 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a0128a8d-df58-597c-a8d3-bbaedbd59dde", "id": "CVE-2014-0119", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2014-0119 is a false positive for org.apache.cxf:cxf-rt-rs-extension-providers 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:87636cc2-f21b-51a6-b37d-1589e8510820", "id": "CVE-2014-0219", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2014-0219 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:9f77296f-f152-51e7-be76-c7a04054d877", "id": "CVE-2016-8735", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8735 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:ea221ba2-9fa5-51d1-bd2e-6fd64be8cfd3", "id": "CVE-2016-8750", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2016-8750 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:98acf9ce-4a0b-54f6-8bf8-371abb157f08", "id": "CVE-2018-11786", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11786 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:8bd6912c-ff1c-59d0-b426-bd5c39e68be5", "id": "CVE-2018-11788", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2018-11788 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:31064909-6be3-5e12-a138-86edf07ccf20", "id": "CVE-2019-0191", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0191 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:35ed9c7c-b514-5c91-a96d-a5a2df105311", "id": "CVE-2019-0226", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2019-0226 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:3592ef5a-fdc0-5ce7-bb8c-f08362134916", "id": "CVE-2020-11980", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2020-11980 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:bc45f773-47cb-5ab8-a44f-3a78bc21875b", "id": "CVE-2020-8022", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2020-8022 is a false positive for org.apache.cxf:cxf-rt-rs-extension-providers 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:013227c5-bcb9-5f14-94d7-1f777f1de92d", "id": "CVE-2021-41766", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2021-41766 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:dc2a2fbe-b109-5866-8e4d-965b5417e11a", "id": "CVE-2022-22932", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-22932 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:a975a892-7d07-5960-9cef-451a997a61fd", "id": "CVE-2022-40145", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2022-40145 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:7bd0868e-e3e4-5eef-bbd1-7efd200cfbbf", "id": "CVE-2025-15104", "analysis": { "state": "false_positive", "detail": "Vulnerability CVE-2025-15104 is a false positive for org.apache.cxf:cxf-rt-rs-extension-providers 3.5.9-tuxcare.4." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:fdd99a3d-738e-586e-854c-3aaa6ffb567a", "id": "CVE-2025-23184", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-23184 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:e0989fdb-70ad-5dd6-8419-e1b9ee625d19", "id": "CVE-2025-24813", "analysis": { "state": "exploitable", "detail": "Vulnerability CVE-2025-24813 affects version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:26bd1c45-987c-5414-a2d3-4ce7815d146f", "id": "CVE-2025-48795", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48795 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }, { "bom-ref": "urn:uuid:d16e447f-23b9-573e-ab9a-8397e9c87062", "id": "CVE-2025-48913", "analysis": { "state": "resolved", "detail": "Vulnerability CVE-2025-48913 is fixed in version 3.5.9-tuxcare.4 of org.apache.cxf:cxf-rt-rs-extension-providers." }, "affects": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] } ], "dependencies": [ { "ref": "pkg:maven/org.apache.cxf/cxf-rt-rs-extension-providers@3.5.9-tuxcare.4" } ] }